后台配置
生成密钥
下载相关链接中的RSA密钥工具
解压后点击 支付宝RAS密钥生成器SHAwithRSA2048_V1.0.bat弹出以下界面
点击生成RSA密钥,会在当前文件夹下生成三个密钥文件
rsa_private_key.pem
私钥:目前没有使用到
rsa_private_key_pkcs8.pem
pkcs8格式的私钥:用于生成签名,建议放在服务器端
rsa_public_key.pem
公钥:在支付宝后台中使用
配置公钥
登录支付宝后台-开发者中心-我的应用-XXX(需要调用支付的应用)-应用信息-开发配置-接口加签方式
点击设置应用公钥,之后将rsa_public_key.pem中的公钥配置到后台中即可
代码实现
支付宝接口的调用需要在线程中实现
调用代码
/**支付宝支付实现Begin**/
public void payV2() {
/**
* 这里只是为了方便直接向商户展示支付宝的整个支付流程;所以Demo中加签过程直接放在客户端完成;
* 真实App里,privateKey等数据严禁放在客户端,加签过程务必要放在服务端完成;
* 防止商户私密数据泄露,造成不必要的资金损失,及面临各种安全风险;
*
* orderInfo的获取必须来自服务端;
*/
Runnable payRunnable = new Runnable() {
@Override
public void run() {
// 通过http向服务器请求订单信息
orderInfo = gson.fromJson(HttpUtils.doPost(url), ZhiFuBean.class);
boolean rsa2 = (RSA2_PRIVATE.length() > 0);
// 拼接相关参数(应放在服务端完成)
Map<String, String> params = OrderInfoUtil2_0.buildOrderParamMap(APPID, rsa2, orderInfo.getOrderInfo());
String orderParam = OrderInfoUtil2_0.buildOrderParam(params);
String sign = OrderInfoUtil2_0.getSign(params, RSA2_PRIVATE, rsa2);
String orderRequest = orderParam + "&" + sign;
// 调用充值方法
PayTask alipay = new PayTask(a);
Map<String, String> result = alipay.payV2(orderRequest, true);
Log.i("msp", result.toString());
Message msg = new Message();
msg.what = SDK_PAY_FLAG;
msg.obj = result;
mHandler.sendMessage(msg);
}
};
Thread payThread = new Thread(payRunnable);
// 启动线程
payThread.start();
}
/**支付宝支付支付实现END**/
参数说明
/**支付宝支付变量Begin**/
// 应用ID(在支付宝后台中可以找到)
public String APPID = Constants.APPID;
// rsa_private_key_pkcs8.pem 密钥(必须放在服务端)
public String RSA2_PRIVATE = Constants.RSA2_PRIVATE;
// 常量,为1
private static final int SDK_PAY_FLAG = Constants.SDK_PAY_FLAG;
/**支付宝支付变量END**/
ZhiFuBean.class
public class ZhiFuBean extends RequestBean {
private OrderInfo orderInfo;
public OrderInfo getOrderInfo() {
return orderInfo;
}
public void setOrderInfo(OrderInfo orderInfo) {
this.orderInfo = orderInfo;
}
}
OrderInfo.class
public class OrderInfo {
private String app_id; // 应用ID
private String method; // 接口名称
private String charset; // 字符集
private String sign_type; // 签名算法
private String timestamp; // 时间戳
private String version; // 版本
private String notify_url; // 回调地址
private BizContent biz_content; // 请求参数集合
public String getApp_id() {
return app_id;
}
public void setApp_id(String app_id) {
this.app_id = app_id;
}
public String getMethod() {
return method;
}
public void setMethod(String method) {
this.method = method;
}
public String getCharset() {
return charset;
}
public void setCharset(String charset) {
this.charset = charset;
}
public String getSign_type() {
return sign_type;
}
public void setSign_type(String sign_type) {
this.sign_type = sign_type;
}
public String getTimestamp() {
return timestamp;
}
public void setTimestamp(String timestamp) {
this.timestamp = timestamp;
}
public String getVersion() {
return version;
}
public void setVersion(String version) {
this.version = version;
}
public String getNotify_url() {
return notify_url;
}
public void setNotify_url(String notify_url) {
this.notify_url = notify_url;
}
public BizContent getBiz_content() {
return biz_content;
}
public void setBiz_content(BizContent biz_content) {
this.biz_content = biz_content;
}
}
OrderInfoUtil2_0.buildOrderParamMap()
/**
* 构造支付订单参数列表
* @return
*/
public static Map<String, String> buildOrderParamMap(String app_id, boolean rsa2,OrderInfo orderInfo) {
Map<String, String> keyValues = new HashMap<String, String>();
keyValues.put("app_id", orderInfo.getApp_id());
keyValues.put("biz_content", gson.toJson(orderInfo.getBiz_content()).toString());
keyValues.put("charset", orderInfo.getCharset());
keyValues.put("method", orderInfo.getMethod());
keyValues.put("sign_type", orderInfo.getSign_type());
keyValues.put("timestamp", orderInfo.getTimestamp());
keyValues.put("version", orderInfo.getVersion());
keyValues.put("notify_url", orderInfo.getNotify_url());
return keyValues;
}
OrderInfoUtil2_0.buildOrderParam()
/**
* 构造支付订单参数信息
*
* @param map
* 支付订单参数
* @return
*/
public static String buildOrderParam(Map<String, String> map) {
List<String> keys = new ArrayList<String>(map.keySet());
StringBuilder sb = new StringBuilder();
for (int i = 0; i < keys.size() - 1; i++) {
String key = keys.get(i);
String value = map.get(key);
sb.append(buildKeyValue(key, value, true));
sb.append("&");
}
String tailKey = keys.get(keys.size() - 1);
String tailValue = map.get(tailKey);
sb.append(buildKeyValue(tailKey, tailValue, true));
return sb.toString();
}
OrderInfoUtil2_0.getSign()
/**
* 对支付参数信息进行签名
*
* @param map
* 待签名授权信息
*
* @return
*/
public static String getSign(Map<String, String> map, String rsaKey, boolean rsa2) {
List<String> keys = new ArrayList<String>(map.keySet());
Collections.sort(keys);
StringBuilder authInfo = new StringBuilder();
for (int i = 0; i < keys.size() - 1; i++) {
String key = keys.get(i);
String value = map.get(key);
authInfo.append(buildKeyValue(key, value, false));
authInfo.append("&");
}
String tailKey = keys.get(keys.size() - 1);
String tailValue = map.get(tailKey);
authInfo.append(buildKeyValue(tailKey, tailValue, false));
String oriSign = SignUtils.sign(authInfo.toString(), rsaKey, rsa2);
String encodedSign = "";
try {
encodedSign = URLEncoder.encode(oriSign, "UTF-8");
} catch (UnsupportedEncodingException e) {
e.printStackTrace();
}
return "sign=" + encodedSign;
}
AndroidManifest.xml需要添加
<activity
android:name="com.alipay.sdk.app.H5PayActivity"
android:configChanges="orientation|keyboardHidden|navigation"
android:exported="false"
android:screenOrientation="behind" >
</activity>
<activity
android:name="com.alipay.sdk.auth.AuthActivity"
android:configChanges="orientation|keyboardHidden|navigation"
android:exported="false"
android:screenOrientation="behind" >
</activity>
<uses-permission android:name="android.permission.INTERNET" />
<uses-permission android:name="android.permission.ACCESS_NETWORK_STATE" />
<uses-permission android:name="android.permission.ACCESS_WIFI_STATE" />
<uses-permission android:name="android.permission.READ_PHONE_STATE" />
<uses-permission android:name="android.permission.WRITE_EXTERNAL_STORAGE" />